This Privacy Policy explains how Vomentatel (Vomentatel) collects, uses, stores, shares, and protects personal data when you visit our website, use our SMS platform, access our dashboard, interact with our APIs, communicate with us, or otherwise use our services.
Vomentatel provides enterprise SMS infrastructure, CPaaS tools, campaign management, real-time delivery tracking, reporting, API access, white-label capabilities, and related messaging services for businesses worldwide.
By using our website, platform, APIs, or services, you acknowledge that your personal data may be processed as described in this Privacy Policy.
1. Who We Are
Vomentatel is an enterprise SMS and CPaaS platform provider.
Company: VomentaTel
Address: Istanbul, Türkiye
Contact Email: hello@vomentatel.com
Privacy Contact: privacy@vomentatel.com
If you are located in a jurisdiction that requires a local privacy representative or Data Protection Officer, relevant contact details may be provided separately or upon request.
2. Our Role: Controller and Processor
Depending on the context, Vomentatel may act either as a data controller or a data processor.
2.1 Vomentatel as Data Controller
We act as a data controller when we decide how and why personal data is processed, including when we process data related to:
- Website visitors
- Trial users
- Platform account owners
- Tenant administrators
- Billing contacts
- Sales and support inquiries
- Marketing communications
- Security, compliance, and fraud prevention
2.2 Vomentatel as Data Processor
We act as a data processor when our business customers use Vomentatel to process personal data through the platform, including:
- Recipient phone numbers
- SMS message content
- Contact lists
- Campaign audiences
- Delivery reports
- Routing and traffic logs
- Webhook events
- Message metadata
In these cases, the customer is generally the data controller and is responsible for ensuring that they have a valid legal basis to upload, store, process, and send messages to recipients.
3. Personal Data We Collect
We may collect the following categories of personal data.
3.1 Account and Registration Data
When you create an account, request a demo, start a trial, or use the platform, we may collect:
- Name
- Company name
- Business email address
- Phone number
- Job title
- Account credentials
- Tenant or account role
- Company billing details
- Country, region, or business address
- Communication preferences
3.2 Platform Usage Data
When you use the Vomentatel platform, we may process:
- Login activity
- Dashboard usage
- Campaign creation activity
- Message sending activity
- Sender ID requests
- API key usage
- Account settings
- User roles and permissions
- Report generation activity
- Webhook configuration
- System logs and audit logs
3.3 Messaging and Recipient Data
When customers use Vomentatel to send or manage SMS traffic, the platform may process:
- Recipient phone numbers
- Sender IDs
- SMS message content
- Contact names, tags, or groups
- Campaign audience data
- Message timestamps
- Delivery status
- Delivery reports
- Error codes
- Country, operator, MCC/MNC, routing, and pricing metadata
- Opt-out and Do-Not-Disturb records
Customers are responsible for ensuring that recipient data has been collected lawfully and that all required consents, notices, opt-outs, and compliance obligations are handled according to applicable law.
3.4 API and Developer Data
When you use our APIs, we may collect:
- API keys
- Account IDs
- Message IDs
- Bulk IDs
- Request and response logs
- Authentication events
- IP addresses
- Webhook delivery logs
- Error logs
- Rate-limit and security logs
3.5 Billing and Payment Data
For paid services, we may process:
- Billing name
- Company details
- Billing address
- Invoice details
- Transaction references
- Payment status
- Subscription plan
- Usage charges
- Credit balance
- Ledger records
Payment card data may be processed by third-party payment providers. Vomentatel does not store full payment card numbers unless expressly stated by the payment provider or required for limited transaction handling.
3.6 Website and Device Data
When you visit our website, we may collect:
- IP address
- Browser type
- Device type
- Operating system
- Pages visited
- Referral source
- Approximate location
- Cookies and similar tracking data
- Website analytics data
3.7 Support and Communication Data
When you contact us, we may collect:
- Name
- Email address
- Company name
- Message content
- Support tickets
- Attachments you provide
- Call or meeting notes
- Feedback and service requests
4. How We Use Personal Data
We process personal data for the following purposes:
- To provide, operate, and maintain the Vomentatel platform
- To create and manage customer accounts
- To authenticate users and secure accounts
- To send SMS messages and process delivery reports
- To manage campaigns, contacts, templates, sender IDs, and reports
- To provide API access, webhooks, and developer tools
- To process billing, payments, credits, invoices, and ledger records
- To provide customer support and technical assistance
- To monitor platform performance, uptime, security, and abuse
- To detect fraud, spam, unauthorized access, or misuse
- To improve platform functionality, routing, analytics, and reporting
- To communicate product updates, service notices, and administrative messages
- To send marketing communications where permitted by law
- To comply with legal, regulatory, telecom, tax, accounting, and security obligations
- To enforce our agreements and protect our rights
5. Legal Bases for Processing
Where applicable data protection laws require a legal basis, we rely on one or more of the following:
5.1 Contract
We process personal data when necessary to provide our services, manage accounts, deliver SMS traffic, provide support, process payments, and perform our contractual obligations.
5.2 Legitimate Interests
We may process personal data for legitimate business interests, including platform security, service improvement, fraud prevention, analytics, internal reporting, customer relationship management, and business development, provided those interests are not overridden by individual rights.
5.3 Consent
We may rely on consent for certain activities, such as optional marketing communications, non-essential cookies, or specific processing activities where consent is required by applicable law.
5.4 Legal Obligation
We may process personal data to comply with legal, regulatory, tax, accounting, telecom, sanctions, anti-abuse, audit, and law enforcement obligations.
5.5 Customer Instructions
When we act as a data processor, we process customer-controlled data only according to the customer's instructions, our agreement, and applicable data protection requirements.
6. Customer Responsibilities for Messaging Data
Customers using Vomentatel are responsible for:
- Having a valid legal basis to send messages
- Obtaining recipient consent where required
- Maintaining accurate contact lists
- Honoring opt-out and Do-Not-Disturb obligations
- Avoiding spam, unlawful, abusive, fraudulent, or misleading messaging
- Ensuring message content complies with applicable laws
- Managing sender ID registration and approval requirements
- Ensuring uploaded recipient data is lawful, accurate, and up to date
- Responding to recipient privacy requests when the customer acts as controller
Vomentatel may suspend, limit, reject, or block traffic that appears unlawful, abusive, fraudulent, non-compliant, or harmful to network integrity.
8. AI, Analytics, and Automated Processing
Vomentatel may use analytics, automation, and AI-assisted tools to support:
- Route optimization
- Traffic performance analysis
- Delivery trend analysis
- Anomaly detection
- Fraud and abuse prevention
- Operational reporting
- Campaign performance insights
These tools are designed to improve platform performance, reliability, security, and reporting. Unless expressly stated otherwise, Vomentatel does not use automated processing to make decisions about individuals that produce legal or similarly significant effects.
10. International Data Transfers
Vomentatel may process and store personal data in countries other than the country where the data was originally collected.
Where required, we use appropriate safeguards for international data transfers, which may include:
- Standard Contractual Clauses
- Data Processing Agreements
- Adequacy decisions
- Contractual security commitments
- Technical and organizational safeguards
- Transfer impact assessments where required
By using Vomentatel, you understand that personal data may be processed internationally as necessary to provide global SMS infrastructure, routing, hosting, analytics, support, and security services.
11. Data Retention
We retain personal data only for as long as reasonably necessary for the purposes described in this Privacy Policy, unless a longer retention period is required or permitted by law.
Retention periods may depend on:
- Account status
- Contractual requirements
- Billing and tax obligations
- Telecom and routing requirements
- Security and audit needs
- Legal claims or dispute resolution
- Customer configuration
- Regulatory obligations
- Backup and disaster recovery cycles
Examples of retention categories include:
- Account data: retained while the account is active and for a reasonable period afterward
- Billing and invoice data: retained as required by tax and accounting laws
- Message logs and delivery reports: retained according to customer settings, contractual terms, operational needs, and legal requirements
- Support records: retained for service history and dispute resolution
- Security logs: retained for platform protection, fraud prevention, and audit purposes
- Marketing data: retained until consent is withdrawn or the user unsubscribes
When personal data is no longer required, we delete, anonymize, aggregate, or securely retain it in accordance with applicable law and operational requirements.
12. Data Security
We apply technical and organizational measures designed to protect personal data against unauthorized access, loss, misuse, alteration, disclosure, or destruction.
Security measures may include:
- Access control
- Authentication controls
- Encryption in transit
- Segregated tenant environments
- Role-based permissions
- Logging and monitoring
- API key management
- Infrastructure security controls
- Backup and recovery procedures
- Abuse and anomaly detection
- Employee confidentiality obligations
- Vendor security review
No system is completely secure. Customers are responsible for maintaining secure credentials, protecting API keys, configuring account permissions carefully, and using the platform in a secure manner.
13. Your Privacy Rights
Depending on your location and applicable law, you may have the right to:
- Request access to your personal data
- Request correction of inaccurate data
- Request deletion of personal data
- Request restriction of processing
- Object to processing
- Withdraw consent
- Request data portability
- Opt out of certain marketing communications
- Opt out of the sale or sharing of personal information where applicable
- Limit the use or disclosure of sensitive personal information where applicable
- Lodge a complaint with a data protection authority
To exercise your rights, contact us at: privacy@vomentatel.com
We may need to verify your identity before responding. If your request concerns SMS messages or recipient data processed on behalf of a Vomentatel customer, we may direct you to the relevant customer because they may be the data controller responsible for your request.
14. California Privacy Notice
This section applies to California residents where the California Consumer Privacy Act, as amended by the California Privacy Rights Act, applies.
In the past 12 months, we may have collected the following categories of personal information:
- Identifiers, such as name, email address, phone number, IP address, account ID, or device identifiers
- Commercial information, such as subscription plan, transaction records, invoices, and service usage
- Internet or network activity, such as website activity, login activity, API usage, and platform logs
- Geolocation information, such as approximate location derived from IP address
- Professional or employment-related information, such as company name, job title, and business contact details
- Inferences, such as product interest, account usage patterns, or support needs
- Sensitive personal information only where necessary for security, authentication, compliance, or service delivery
We collect this information from you, your company, your use of the platform, your communications with us, cookies and analytics tools, payment providers, and service providers.
We use this information for the purposes described in this Privacy Policy, including service delivery, account management, billing, security, analytics, support, compliance, and business operations.
California residents may have the right to:
- Know what personal information we collect, use, disclose, sell, or share
- Access personal information
- Delete personal information
- Correct inaccurate personal information
- Opt out of the sale or sharing of personal information
- Limit the use and disclosure of sensitive personal information where applicable
- Not be discriminated against for exercising privacy rights
To submit a California privacy request, contact: privacy@vomentatel.com
Vomentatel does not knowingly sell personal information for monetary compensation. If applicable law interprets certain analytics, advertising, or cookie-based disclosures as "sharing" or "sale," eligible users may opt out through available cookie controls or by contacting us.
15. Marketing Communications
We may send marketing communications to business contacts where permitted by law.
You may opt out of marketing emails by using the unsubscribe link in the email or contacting us directly.
Service-related emails, security notices, billing messages, account alerts, and transactional communications are not marketing communications and may still be sent where necessary to provide the service.
Customers using Vomentatel for SMS marketing are responsible for ensuring that they have appropriate consent or another valid legal basis to message their recipients.
16. Children's Privacy
Vomentatel is a business-to-business platform and is not intended for children.
We do not knowingly collect personal data from children. If we become aware that we have collected personal data from a child without appropriate authorization, we will take reasonable steps to delete it.
17. Third-Party Links and Services
Our website or platform may contain links to third-party websites, services, integrations, or documentation.
We are not responsible for the privacy practices of third parties. Their privacy policies and terms apply to their own services.
18. Data Processing Agreement
For business customers that require a Data Processing Agreement, Vomentatel may provide one upon request.
The Data Processing Agreement may include:
- Processor obligations
- Customer instructions
- Security measures
- Sub-processor terms
- International transfer safeguards
- Assistance with data subject requests
- Deletion or return of customer data
- Audit and compliance terms
19. Changes to This Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in our services, technology, laws, or business operations.
When we make material changes, we may notify users by email, platform notice, website update, or other appropriate method.
The "Last Updated" date at the top of this page indicates when this Privacy Policy was last revised.
20. Contact Us
For questions about this Privacy Policy or our data protection practices, contact us at:
Vomentatel
Istanbul, Türkiye
Email: hello@vomentatel.com
Privacy: privacy@vomentatel.com
